Lucene search
K

124 matches found

Cvelist
Cvelist
added 2024/11/01 12:0 a.m.32 views

CVE-2024-51377

An issue in Ladybird Web Solution Faveo Helpdesk & Servicedesk On-Premise and Cloud 9.2.0 allows a remote attacker to execute arbitrary code via the Subject and Identifier fields...

0.00448EPSS
Exploits1References2
NVD
NVD
added 2024/10/22 10:15 p.m.30 views

CVE-2024-46482

An arbitrary file upload vulnerability in the Ticket Generation function of Ladybird Web Solution Faveo-Helpdesk v2.0.3 allows attackers to execute arbitrary code via uploading a crafted .html or .svg file...

8.2CVSS0.00348EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/22 12:0 a.m.14 views

CVE-2024-46482

An arbitrary file upload vulnerability in the Ticket Generation function of Ladybird Web Solution Faveo-Helpdesk v2.0.3 allows attackers to execute arbitrary code via uploading a crafted .html or .svg file...

0.00348EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/22 12:0 a.m.12 views

CVE-2024-46482

An arbitrary file upload vulnerability in the Ticket Generation function of Ladybird Web Solution Faveo-Helpdesk v2.0.3 allows attackers to execute arbitrary code via uploading a crafted .html or .svg file...

7.8AI score0.00348EPSS
Exploits0References1
NVD
NVD
added 2024/07/21 7:15 a.m.49 views

CVE-2024-37557

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Soham Web Solution WP Cookie Law Info allows Stored XSS.This issue affects WP Cookie Law Info: from n/a through 1.1...

5.9CVSS0.00276EPSS
Exploits0References1
CVE
CVE
added 2024/07/21 6:52 a.m.48 views

CVE-2024-37557

CVE-2024-37557 is a stored Cross‑Site Scripting vulnerability in the WordPress plugin WP Cookie Law Info (affected: n/a through 1.1). The issue is described as “Improper Neutralization of Input During Web Page Generation” (XSS) and is attributed to the plugin’s handling of user-controlled input d...

5.9CVSS5.8AI score0.00276EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/07/21 6:52 a.m.38 views

CVE-2024-37557 WordPress WP Cookie Law Info plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Soham Web Solution WP Cookie Law Info allows Stored XSS.This issue affects WP Cookie Law Info: from n/a through 1.1...

5.9CVSS0.00276EPSS
Exploits0References1
NVD
NVD
added 2024/04/11 1:25 a.m.9 views

CVE-2024-27989

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in I Thirteen Web Solution WP Responsive Tabs horizontal vertical and accordion Tabs allows Stored XSS.This issue affects WP Responsive Tabs horizontal vertical and accordion Tabs: from n/a through...

6.5CVSS6.4AI score0.00312EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/21 3:14 p.m.17 views

CVE-2024-27989 WordPress WP Responsive Tabs horizontal vertical and accordion Tabs plugin <= 1.1.17 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in I Thirteen Web Solution WP Responsive Tabs horizontal vertical and accordion Tabs allows Stored XSS.This issue affects WP Responsive Tabs horizontal vertical and accordion Tabs: from n/a through...

6.5CVSS6.6AI score0.00312EPSS
Exploits0References1
OSV
OSV
added 2024/03/17 5:15 p.m.3 views

CVE-2024-27960

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in I Thirteen Web Solution Email Subscription Popup allows Stored XSS.This issue affects Email Subscription Popup: from n/a through 1.2.20...

6.1CVSS5.8AI score0.00331EPSS
Exploits0References1
Prion
Prion
added 2023/11/08 7:15 p.m.20 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Post Sliders & Post Grids plugin = 1.0.20 versions...

4.3CVSS5.8AI score0.00397EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/11/08 6:33 p.m.94 views

CVE-2023-47226

CVE-2023-47226 affects the WordPress plugin Post Sliders & Post Grids (I Thirteen Web Solution) up to version 1.0.20. Root cause is an authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability, enabling an administrator to inject scripts that could be executed in other users’ context...

5.9CVSS4.9AI score0.00397EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/08 6:33 p.m.24 views

CVE-2023-47226 WordPress Post Sliders & Post Grids Plugin <= 1.0.20 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Post Sliders & Post Grids plugin = 1.0.20 versions...

5.9CVSS5.6AI score0.00397EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/11/08 12:0 a.m.5 views

PT-2023-30372 · WordPress · I Thirteen Web Solution Post Sliders & Post Grids

Name of the Vulnerable Software and Affected Versions: I Thirteen Web Solution Post Sliders & Post Grids plugin versions = 1.0.20 Description: The issue is related to an Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability. This means that an attacker with administrative access can...

4.8CVSS5.3AI score0.00397EPSS
Exploits0References5
NVD
NVD
added 2023/10/02 8:15 a.m.27 views

CVE-2023-41731

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution WordPress publish post email notification plugin = 1.0.2.2 versions...

5.9CVSS5.4AI score0.0031EPSS
Exploits0References1
CVE
CVE
added 2023/09/29 1:33 p.m.62 views

CVE-2023-41658

CVE-2023-41658 affects the WordPress plugin “Photo Gallery Slideshow & Masonry Tiled Gallery” versions 1.0.13 (patches indicate 1.0.14 fixes) or disable the plugin as a workaround. No exploitation details or in-the-wild exploit status are provided in the supplied documents. Additional context fr...

7.1CVSS6AI score0.00309EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/29 12:0 a.m.5 views

PT-2023-28029 · WordPress · I Thirteen Web Solution Photo Gallery Slideshow & Masonry Tiled Gallery

Name of the Vulnerable Software and Affected Versions: I Thirteen Web Solution Photo Gallery Slideshow & Masonry Tiled Gallery plugin versions = 1.0.13 Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts...

7.1CVSS6.1AI score0.00309EPSS
Exploits0References7
OSV
OSV
added 2023/08/30 12:15 p.m.1 views

CVE-2023-32597

Unauth. Reflected Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Video Gallery plugin = 1.0.10 versions...

6.1CVSS6.3AI score
Exploits0References1
Prion
Prion
added 2023/08/30 12:15 p.m.18 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in I Thirteen Web Solution Video Gallery plugin = 1.0.10 versions...

5.8CVSS6AI score0.00309EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/08/30 11:45 a.m.37 views

CVE-2023-32597

CVE-2023-32597 concerns the I Thirteen Web Solution Video Gallery WordPress plugin (versions up to and including 1.0.10). The vulnerability is an unauthenticated, reflected Cross-Site Scripting (XSS) flaw in the plugin, where attacker-supplied input can be reflected in pages. Patchstack and relat...

7.1CVSS6AI score0.00309EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder